Self-Hosting Changelog

Here you can find all the recent improvements and updates about the self-hosting images. The Docker images published to the GitHub registry using the same tags. For a high-level overview of improvements please refer to our product updates.

6.0.0

Major Changes

• #6556 7b9129c Thanks @n1ru4l! - Add organization access tokens; a new way to issue access tokens for performing actions with the CLI and doing usage reporting.

  Breaking Change: The usage service now requires environment variables for Postgres (POSTGRES_SSL, POSTGRES_HOST, POSTGRES_PORT, POSTGRES_DB, POSTGRES_USER, POSTGRES_PASSWORD) and Redis (REDIS_HOST, REDIS_PORT, REDIS_PASSWORD, REDIS_TLS_ENABLED).

  For more information please refer to the organization access token documentation.

  • Product Update: Organization-Level Access Tokens for Enhanced Security & Flexibility
  • Migration Guide: Moving from Registry Access Tokens to Access Tokens
  • Access Token Documentation

• #6613 0fd4d96 Thanks @n1ru4l! - Restructure the environment variables used for the Hive Cloud hosting. While this is techincally a breaking change it will not really affect people self-hosting Hive.

  Breaking: Remove unused environment variable options HIVE_REPORTING, HIVE_REPORTING_ENDPOINT and HIVE_USAGE_DATA_RETENTION_PURGE_INTERVAL_MINUTES from the server service.

  These environment variables are obsolete since the Hive GraphQL schema is reported via the Hive CLI instead.

  Breaking: Replace the environment variable option HIVE with HIVE_USAGE, rename environment variable option HIVE_API_TOKEN to HIVE_USAGE_ACCESS_TOKEN for the server service. Require providing the HIVE_USAGE_ACCESS_TOKEN environment variable if HIVE_USAGE is set to 1.

Patch Changes

• #6594 06e7012 Thanks @jdolle! - Fix insights range if selecting same start and end

• #6609 1c44345 Thanks @kamilkisiela! - Mark usage-ingestor as unhealthy when Kafka consumer crashed

• #6585 c0d9ca3 Thanks @jdolle! - Restrict new service names to 64 characters, alphanumberic, _ and -.

• #6607 18f82b4 Thanks @kamilkisiela! - Ensure all materialized views have correct TTL

5.1.3

Patch Changes

• #6553 f0fe03c Thanks @kamilkisiela! - Standardize the design and content of all email templates for consistency.

• #6571 bf06e94 Thanks @kamilkisiela! - Adds ability to all services to write a heap dump to a disk when SIGUSR1 signal is received

• #6593 ef1efbb Thanks @jdolle! - Fix operation insights showing loading for missing operations

• #6582 bb2f2aa Thanks @jdolle! - Adds optional url argument to schema checks

• #6586 e10de03 Thanks @kamilkisiela! - Corrected an issue where fields from type extensions were not marked as unused when appropriate

• #6542 719e3e6 Thanks @kamilkisiela! - Consolidates email templating logic into the emails service.

5.1.2

Patch Changes

• #6518 a8a2da5 Thanks @kamilkisiela! - Ensure response body is read before timeout to avoid abort errors in S3 client (CDN)

• #6536 6cdcef1 Thanks @kamilkisiela! - Adds an index to coordinates_(daily,hourly,minutely) tables to speedup the get_top_operations_for_types ClickHoue query.

  Reading of type and fields usage statisticts should be noticeably faster now on big datasets.

5.1.1

Patch Changes

• #6502 cef7fd8 Thanks @kamilkisiela! - Update @theguild/federation-composition to 0.14.4

  • Fix a child data type field not being accessible via interfaceObject
  • Respect inaccessible enum values while creating the public schema from the supergraph AST

5.1.0

Minor Changes

• #6449 0504530 Thanks @n1ru4l! - Modify GraphQL fields used by CLI to accept an optional specified target that is used for identifying the affected target instead of resolving the target from the access token.

Patch Changes

• #6472 4d3d6fc Thanks @n1ru4l! - Improve the usage reporting endpoint error responses to include all the errors for invalid JSON bodies.

• #6455 6924a1a Thanks @jasonkuhrt! - A minor defect in Laboratory has been fixed that previously caused the application to crash when local storage was in a particular state.

5.0.0

Major Changes

• #6231 b7e4052 Thanks @n1ru4l! - New permission system for organization member roles.

  The existing scopes assigned to organization members have been replaced with a permissions-based system, enabling more granular access control and role-based access control (RBAC) in Hive.

  Breaking Changes

  • Viewer Role Adjustments – Members with the default Viewer role can no longer create targets or projects.
  • Restricted Role Management – Permissions for inviting, removing, and assigning roles have been revoked. An admin must manually reassign these permissions where needed.
  • Expanded Role Assignment Capabilities – Members with permissions to manage invites, remove members, or modify roles can now grant additional permissions without restrictions. Caution is advised when assigning these rights, as they should be reserved for “Admin” roles.

  These changes enhance security and provide greater flexibility in managing user permissions across organizations.

Minor Changes

• #6378 f14daa8 Thanks @jasonkuhrt! - You can now set HTTP headers in your Laboratory Preflight Script. Every time you run a request from Laboratory, your preflight headers, if any, will be merged into the request before it is sent.

  You achieve this by interacting with the Headers instance newly available at lab.request.headers. For example, this script would would add a foo header with the value bar to every Laboratory request.

  lab.request.headers.set('foo', 'bar')

  A few notes about how headers are merged:

  1. Unlike static headers, preflight headers do not receive environment variable substitutions on their values.
  2. Preflight headers take precedence, overwriting any same-named headers already in the Laboratory request.

  Documentation for this new feature is available at https://the-guild.dev/graphql/hive/docs/dashboard/laboratory/preflight-scripts#http-headers.

• #6123 abfd1b1 Thanks @Intellicode! - encode postgres variables and introduce optional password

• #6412 f352bba Thanks @Intellicode! - Added a new environment variable PROMETHEUS_METRICS_PORT to control the promethus port of the policy service. The default value is 10254 (no action needed).

Patch Changes

• #6398 0e4be14 Thanks @kamilkisiela! - Remove the db leftovers related to activities (no longer a thing)

• #6433 a902d8b Thanks @kamilkisiela! - Improves validation for operation durations and error totals. Prevents processing of invalid usage report data.

• #6374 393ece7 Thanks @kamilkisiela! - Adjust the Kafka message size estimation only when Kafka gives back MESSAGE_TOO_LARGE error

• #6358 ab06518 Thanks @jdolle! - Use sum instead of max of top request counts for breaking changes calculation

4.1.0

Minor Changes

• #6400 d2a4387 Thanks @kamilkisiela! - Display logs from the Preflight Script in Laboratory

• #6348 e754700 Thanks @kamilkisiela! - Adds ability to select a default role for new OIDC users

• #6351 ba20748 Thanks @dotansimha! - Added a new environment variable OPENTELEMETRY_TRACE_USAGE_REQUESTS for rate-limit and tokens services.

  Self-hosters who wish to report telemetry information for usage service, can opt-in and set OPENTELEMETRY_TRACE_USAGE_REQUESTS=1 to these services. This will skip sampling and will always trace requests originating from the usage service.

• #6388 a8ff443 Thanks @kamilkisiela! - Add multi-column sort to Insights > Operations table

• #6389 781b140 Thanks @kamilkisiela! - Show Impact metric in the Operations list on the Insights page. Impact equals to the total time spent on this operation in the selected period in seconds. It helps assess which operations contribute the most to overall latency.

  Impact = Requests * avg/1000

• #6393 84fd770 Thanks @kamilkisiela! - Add type definitions of global.lab to Preflight Script editor

• #6351 ba20748 Thanks @dotansimha! - Added OpenTelemetry traces to Usage service using a new OPENTELEMETRY_COLLECTOR_ENDPOINT env var.

  This option is disabled by default for self-hosting, you can opt-in by setting OPENTELEMETRY_COLLECTOR_ENDPOINT.

Patch Changes

• #6386 d19229f Thanks @kamilkisiela! - Remove the code leftovers related to activities (no longer a thing)

• #6380 40213fb Thanks @kamilkisiela! - Update @theguild/federation-composition to v0.14.3

• #6399 607192e Thanks @kamilkisiela! - Disable “select organization” dropdown for OIDC accounts

4.0.1

Patch Changes

• c6a21ff Thanks @dotansimha! - Bump version to test release flow

4.0.0

Major Changes

• #6259 1168564 Thanks @kamilkisiela! - No longer support the legacy registry models. Announcement https://the-guild.dev/blog/graphql-hive-improvements-in-schema-registry

Minor Changes

• #6340 3183f5a Thanks @n1ru4l! - Remove the legacy member role assignment wizard.

• #6341 2fa3352 Thanks @kamilkisiela! - Allow to close the last tab in Laboratory

• #6254 b58d2c5 Thanks @jdolle! - Add option for checking breaking changes by a fixed request count

Patch Changes

• #6332 6b9192c Thanks @kamilkisiela! - Assigns custom roles to members without a role to complete https://the-guild.dev/graphql/hive/product-updates/2023-12-05-member-roles

• #6369 b40cabd Thanks @kamilkisiela! - Fix the audit log export

• #6368 0c2e953 Thanks @n1ru4l! - Fix connecting slack integration.

• #6365 bab2cf0 Thanks @dotansimha! - Fix release and package flow for Docker images of hive

3.0.0

Major Changes

• #6066 e747e4c Thanks @n1ru4l! - Drop user accounts and organization not linked to a SuperTokens account.

  This is mainly a cleanup for legacy accounts on Hive Cloud that were not migrated from Auth0 some years ago. It should not affect self-hosters.

Minor Changes

• #6261 09c01d6 Thanks @kamilkisiela! - Adds a response validation of the POST https://slack.com/api/oauth.v2.access request.

  This request is made when connecting Slack to Hive. This is to ensure that the response is a JSON object and that it contains the expected keys and provide informative error messages if it does not.

Patch Changes

• #6265 cecd95b Thanks @dotansimha! - Relax uuid check for external IDs in audit log metadata. Fixes https://github.com/graphql-hive/console/issues/6264

• #6262 d98e146 Thanks @kamilkisiela! - Resolve the issue where the laboratory mocked endpoint consistently returns: “Please publish your first schema to Hive.”

• #6267 817fed3 Thanks @dotansimha! - bugfix: scrollIntoView is not a function in lab page (fixed https://github.com/graphql-hive/console/issues/6263)

• #6282 a7f9d50 Thanks @kamilkisiela! - Fix editor state and operation handling in Laboratory.

  When opening a new tab or selecting a saved operation, the editor incorrectly populated the query, defaulting to the active query. This made it impossible to view the selected operation. Additionally, the submit button for saving an operation was always disabled, even when the form was in a valid state.

2.1.0

Minor Changes

• #5564 e0eb3bd Thanks @dimaMachina! - Add preflight scripts for laboratory.

  It is now possible to add a preflight script within the laboratory that executes before sending a GraphQL request. Learn more.

• #5530 38c14e2 Thanks @TuvalSimha! - Add organization audit log.

  Each organization now has an audit log of all user actions that can be exported by admins. Exported audit logs are stored on the pre-configured S3 storage.

  In case you want to store exported audit logs on a separate S3 bucket, you can use the S3_AUDIT_LOG prefixed environment variables for the configuration.

  Learn more.

• #6234 eecd099 Thanks @kamilkisiela! - Adds lab.prompt(message, defaultValue) to Preflight Script API

Patch Changes

• #6232 ff44b62 Thanks @kamilkisiela! - Improvements to UI of Preflight Script (Laboratory)

• #6233 7b0c920 Thanks @kamilkisiela! - Tiny UI fixes

2.0.1

Patch Changes

• #6158 3093c9f Thanks @dotansimha! - Added missing index for postgres db field “schema_version_changes.schema_version_id”

2.0.0

Major Changes

• #6142 25f1460 Thanks @TuvalSimha! - Upgrade the PostgreSQL version for Docker Compose from version 14.13 to use 16.4.

  This change is published as major, as it requires attention based on your setup.

  For self-hosters with a managed database, we recommend upgrading PostgreSQL based on your Cloud provider’s or IT’s recommendation.

  For self-hosters running in Docker, you can read about upgrading PostgreSQL in a Docker container here.

  The Hive data that was previously created with PostgreSQL v14 is compatible with v16.

Patch Changes

• #6156 b6eb5d0 Thanks @dotansimha! - Improvement for OTEL tracing and added missing attributes

• #6156 b6eb5d0 Thanks @dotansimha! - Performance improvements for Postgres DB calls (specifically getSchemasOfVersion, see https://github.com/graphql-hive/console/pull/6154)

1.2.4

Patch Changes

• #6138 349a67d Thanks @kamilkisiela! - Prevent stripe.js from loading automatically

1.2.3

Patch Changes

• #6115 0d7ce02 Thanks @kamilkisiela! - Move information about target and organization to logger’s metadata in usage service

• #6121 6d78547 Thanks @kamilkisiela! - Make optional properties optional or nullable in usage report v2

• #6111 cffd08a Thanks @kamilkisiela! - Fix a missing @join__field on a query field where @override is used, but not in all subgraphs.

1.2.2

Patch Changes

• #6065 9297f33 Thanks @n1ru4l! - Allow organizations without a GitHub or Slack integration to add and manage integrations.

1.2.1

Patch Changes

• #5945 03f08ca Thanks @n1ru4l! - Require “registry write” permissions for approving failed schema checks, schema versions, and the laboratory.

• #5989 a87a541 Thanks @kamilkisiela! - Retry calls to Github API when creating check-runs

• #5989 a87a541 Thanks @kamilkisiela! - Inform users about Github API issues when creating check runs

1.2.0

Minor Changes

• #5897 cd9a13c Thanks @n1ru4l! - Update supertokens-postgresql to 9.3.

Patch Changes

• #5924 5ad52ba Thanks @n1ru4l! - Fix logging for invalid operation body within usage reporting.

1.1.1

Patch Changes

• #5907 5adfb6c Thanks @n1ru4l! - Remove option to remove the organization owner from the organization.

1.1.0

Minor Changes

• #5884 8aec41a Thanks @andriihrachov! - Add REDIS_TLS_ENABLED environment variable for enabling and disabling Redis TLS for emails, schema, tokens, webhooks and server services.

• #5889 0eef5ed Thanks @n1ru4l! - Update supertokens-postgresql to 8.0.

1.0.2

Patch Changes

• #5872 580d349 Thanks @kamilkisiela! - Bump @theguild/federation-composition to v0.14.1

1.0.1

Patch Changes

• #5858 11973c7 Thanks @kamilkisiela! - fix: conditional breaking changes form #5852

1.0.0

This is the first officially versioned release of Hive.

While it has been available and in use for some time, this marks the introduction of formal versioning and a changelog to track future updates and improvements.